Context - I'm doing my msc in cyber sec and for an ethical hacking course work we need to exploit 3 vmd. Then get root to view root txt.More or less like a try hack me challenge. We don't have internet for the vms.And for the attacker machine we have a kali 2023 vm.
I successfully sorted out two pcs (one linux and one windows) but struggling to get the root of the last pc.I've confirmed with the tutor that i am trying to exploit the right vulnerability but seems like the command i use is bugged or i'm just blind to something obvious.
Pc has a codiad and openlite , using codiad vulnerabilty (exploit db : 49705) a reverse shell was gained.I m suppossed to use https://github.com/litespeedtech/openlitespeed/issues/217 or exploit db 49483 to run a command as nobody and priv escalate.
I've been at this for 3-4 days now. Submission deadline is in less than 24 hours so, any and all help is much appreciated.
[link] [comments]
from hacking: security in practice https://ift.tt/S1faMKB
Comments
Post a Comment